Eccouncil Exam ECSS Topic 3 Question 72 Discussion

Actual exam question for Eccouncil's ECSS exam

Question #: 72
Topic #: 3

[All ECSS Questions]

Robert, a security specialist, was appointed to strengthen the security of the organization's network. To prevent multiple login attempts from unknown sources, Robert implemented a security strategy of issuing alerts or warning messages when multiple failed login attempts are made.

Which of the following security risks is addressed by Robert to make attempted break-ins unsuccessful?

AIndefinite session timeout

BAbsence of account lockout for invalid session IDs

CSmall session-ID generation

DWeak session-ID generation

Show Suggested Answer

Suggested Answer: A

by Nieves at Aug 06, 2023, 09:25 AM

Limited Time Offer

25%

Off

Get Premium ECSS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Charlesetta

4 days ago

Hmm, I'd say this is addressing the issue of brute-force attacks. Alerting on multiple failed attempts is a smart move to catch those sneaky login attempts. Robert's got the right idea - keep those digital intruders out!

upvoted 0 times

...

Billi

5 days ago

Ah, the age-old problem of unauthorized access! I bet Robert is feeling like a security superhero right now. Locking down those login attempts is the way to go - gotta keep those hackers at bay, you know?

upvoted 0 times

...

Tamie

6 days ago

I believe option B) Absence of account lockout for invalid session IDs is the security risk addressed by Robert. Locking out accounts after multiple failed attempts can prevent unauthorized access.

upvoted 0 times

...

Nan

9 days ago

I agree with Kris. By issuing alerts, Robert is making it harder for attackers to guess valid credentials through trial and error.

upvoted 0 times

...

Kris

10 days ago

I think Robert is addressing the risk of brute force attacks by implementing alerts for multiple failed login attempts.

upvoted 0 times

...